Re: Looking for free IDS training

1daguerr_at_rigel.deusto.es
Date: 04/29/05

  • Next message: Andre Derek Protas: "Re: SNORT + Win32" 
    To: focus-ids@lists.securityfocus.com
Date: Fri, 29 Apr 2005 17:25:53 +0200 (CEST)

    Check this material

    http://www.ll.mit.edu/IST/ideval/docs/1999/id99-eval-ll.html

    you have ids training data, materials ...

    > I have a sponsor who's looking for some free IDS training material. Open
    >
    > source or one of those CBT type training CDs/ Any suggestions?
    >
    >
    >
    >
    > --------------------------------------------------------------------------
    > Stop hurting your network!
    >
    > The NeVO passive vulnerability sensor continuously finds vulnerabilities,
    > applications and new hosts without the need for network scanning.
    > It also finds compromised systems with application-based intrusion
    detection.
    > Go to http://www.tenablesecurity.com/products/nevo.shtml to learn more.
    > --------------------------------------------------------------------------
    >
    >

    --------------------------------------------------------------------------
    Test Your IDS

    Is your IDS deployed correctly?
    Find out quickly and easily by testing it with real-world attacks from
    CORE IMPACT.
    Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
    to learn more.
    --------------------------------------------------------------------------

  • Next message: Andre Derek Protas: "Re: SNORT + Win32"

    Relevant Pages

    • Re: IDS and NMS
      ... Start by designing and installing a network. ... Next, a more detailed view of the network is required, so a NMS is ... the network administrator wants to see what ... This is where integrating the IDS console into the NMS makes sense. ...
      (Focus-IDS)
    • Re: "false positive" inanity
      ... So Mr. Snyder is asking for an IDS that does not need to be configured? ... maximum control of his/her network. ... attack. ... > assuming that it is not an intrusion. ...
      (Focus-IDS)
    • Re: Secure Network Design (DMZ, LAN, etc)
      ... I'd like one outside the firewall and one ... I assumed I could make the first IDS ... should I have the IDS listening on the 192.168.1.0/24 network as well (web ... >Since the whole world will need access to your web servers, ...
      (Security-Basics)
    • Re: which attacks will generate false positive or false negative?
      ... addresses of the servers on your network that are allowed to do DNS Zone ... you first install a Network IDS, snmpwalks may trigger from your network ... Matt brings up the point of alerts to things that didn't have any ... you're not sure of the best way to tune out false positives during your ...
      (Focus-IDS)
    • Re: Need some information on HIDS!
      ... I have already invoked such a scenario in some of my previous IDS ... What I had in mind is something like encrypting the whole ... network traffic, to prevent sniffing from intruders (let's say wall-to-wall ... analysing and displaying logs. ...
      (Focus-IDS)